Security Advisory

CVE-2023-35853

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-19 00:00:00

Last updated 2024-12-11 17:04:00

Assigner mitre

State PUBLISHED

Description

In Suricata before 6.0.13, an adversary who controls an external source of Lua rules may be able to execute Lua code. This is addressed in 6.0.13 by disabling Lua unless allow-rules is true in the security lua configuration section.

← Browse all CVEs View on cve.org ↗